Ive rebuilt OpenLDAP on provider to 2.4.31 but it's still happening. I've
rebuilt twice - first with SASL, then without and it makes no difference
either.
This is driving me crazy bannanas now. Anything in my config that's wrong?
What's the cause of Strong(er) authentication required
Remove your dn{} line.
Sorry, which dn line do you mean?
This?
authzTo: {0}dn:*
Yeah.
--
Kind Regards,
Gavin Henry.
Managing Director.
T +44 (0) 1224 279484
M +44 (0) 7930 323266
F +44 (0) 1224 824887
E ghe...@suretecsystems.com
Open Source. Open Solutions(tm).
No difference.
What were you hoping it would do?
I also tried to upgrade syncrepl to TLS and while replication works fine
over TLS, chaining still says Strong(er) authentication is needed.
And i get
50150d47 do_bind: dn () SASL mech EXTERNAL
50150d47 ==slap_sasl2dn: converting SASL name
cn=cn\3Dreplicator,o=webgate,st=some-state,c=au to a DN
I just discovered something odd.
I ran slapd -d 256 on the provider, then started the replicator, and then
did ldapmodify and look what i found:
50152ae5 conn=1020 op=0 BIND dn= method=128
50152ae5 conn=1020 op=0 RESULT tag=97 err=0 text=
50152ae5 conn=1020 op=1 MOD
Well looks like I figured it out. In the bottom of slapo-chain man page,
it says
All URIs not listed in the configuration are chained anonymously.
my chain-uri was ldap://ldap.provider.net:389/;
but my updateref was ldap://ldap.provider.net
After changing chain-uri to the same as updateref,
On 29 Jul 2012, at 11:08, elekktrett...@exemail.com.au
elekktrett...@exemail.com.au wrote:
No difference.
What were you hoping it would do?
Sorry, I replied in a rush!
Gavin.
Hi,
I've spent 2 days on this now and can't figure it out.
Master directory (2.4.21 on FBSD 7, compiled with SASL)
Slave (2.4.31 on Debian Squeeze)
The goal is to eventually use TLS as both the servers are remote from one
to another, but for the sake of simplicity during testing i'm not using
You may be getting hit by ITS#4744 (fixed in 2.4.30 and you provider
is older)
http://www.openldap.org/its/index.cgi/Archive.Software%20Bugs?id=4744;selectid=4744;usearchives=1
but will take a closer look at your config.
Ive rebuilt OpenLDAP on provider to 2.4.31 but it's still happening.